Email MalWare Warning

A number of CSU campuses have experienced instances of an email malware campaign that has surfaced and appears to be spreading through fake emails designed to mimic the look of legitimate emails from campus users or businesses. Cryptolocker comes through the campus as a social engineering attack. Usually the virus payload hides in an attachment to a phishing message. An example of this type of email is below.

What To Look For

Attachment to a phishing message. An example of this type of email is below.

If you become infected, you may see the following:

This attack is associated with an increasing number of CSU campus ransomware infections that demands the victim provide a payment to the attackers in order to decrypt and recover their files.

What’s Required of Me?

The U.S. CERT and the Department of Homeland Security suggest the following:

Do not follow unsolicited web links in email messages or submit any information to webpages in links